Skip to content

Releases: mindersec/minder

v0.0.73

12 Nov 14:47
cda126f
Compare
Choose a tag to compare

What's Changed

Full Changelog: v0.0.72...v0.0.73

v0.0.72

05 Nov 14:26
107599c
Compare
Choose a tag to compare

What's Changed

  • Skip rule test files by @rdimitrov in #4836
  • Simplify logic for required branch parameter to gh_branch_protection by @evankanderson in #4801
  • build(deps): bump github.com/lestrrat-go/jwx/v2 from 2.1.1 to 2.1.2 by @dependabot in #4832
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.37.0 to 1.37.1 by @dependabot in #4839
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.0 to 1.28.1 by @dependabot in #4837
  • Add a YQ-powered remediation function by @jhrozek in #4830
  • build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.37.0 to 1.37.1 by @dependabot in #4833
  • Fix a 0.2% natschannel_test flake with some forced scheduler sleeps by @evankanderson in #4841
  • build(deps): bump github.com/ThreeDotsLabs/watermill from 1.3.7 to 1.4.0 by @dependabot in #4842
  • build(deps): bump anchore/sbom-action from 0.17.5 to 0.17.6 by @dependabot in #4844
  • build(deps): bump github.com/bufbuild/buf from 1.45.0 to 1.46.0 in /tools by @dependabot in #4843
  • Measure coverage for pkg folder. by @blkt in #4845
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.31.0 to 3.32.0 by @dependabot in #4847
  • build(deps): bump github.com/openfga/openfga from 1.6.1 to 1.7.0 by @dependabot in #4848
  • Add flag-driven event publisher by @evankanderson in #4784
  • Add support for proto message validation by @rdimitrov in #4840
  • Validate the user invitation HTML templates by @rdimitrov in #4835
  • Allow proto email to be empty by @rdimitrov in #4852
  • Fix proto validations for project and display_name by @rdimitrov in #4854
  • build(deps): bump github.com/open-policy-agent/opa from 0.69.0 to 0.70.0 by @dependabot in #4857
  • build(deps): bump github.com/charmbracelet/lipgloss from 0.13.1 to 1.0.0 by @dependabot in #4855
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.37.1 to 1.38.0 by @dependabot in #4858
  • build(deps): bump buf.build/gen/go/bufbuild/protovalidate/protocolbuffers/go from 1.34.2-20240920164238-5a7b106cbb87.2 to 1.35.1-20240920164238-5a7b106cbb87.1 by @dependabot in #4856
  • Remove duplicated if statement in NewEventer by @rdimitrov in #4859
  • Fix the set bundle version query for the subscriptions table by @rdimitrov in #4860
  • Add email field validation to protos by @eleftherias in #4861
  • Add proto validation for project ID by @eleftherias in #4862
  • Add pkg/querier package by @rdimitrov in #4849
  • build(deps): bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 by @dependabot in #4865
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.32.0 to 3.32.1 by @dependabot in #4866
  • build(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.22.0 to 2.23.0 in /tools by @dependabot in #4868
  • build(deps): bump github.com/ThreeDotsLabs/watermill from 1.4.0 to 1.4.1 by @dependabot in #4867
  • build(deps): bump github.com/grpc-ecosystem/grpc-gateway/v2 from 2.22.0 to 2.23.0 by @dependabot in #4864
  • Fix docs references in README.md by @staceypotter in #4863
  • Add proto validation for entity IDs by @eleftherias in #4869
  • Add proto validation for profile ID by @eleftherias in #4870
  • Update docusaurus to 3.6.0 by @eleftherias in #4875
  • Group docusaurus PRs into a single update group by @rdimitrov in #4876
  • build(deps): bump path-to-regexp from 1.8.0 to 1.9.0 in /docs by @dependabot in #4877

Full Changelog: v0.0.71...v0.0.72

v0.0.71

25 Oct 13:42
1bc9af5
Compare
Choose a tag to compare

What's Changed

Full Changelog: v0.0.70...v0.0.71

v0.0.70

23 Oct 17:47
9b67cf1
Compare
Choose a tag to compare

What's Changed

  • build(deps): bump mermaid from 10.8.0 to 10.9.3 in /docs by @dependabot in #4792
  • Apply a bunch of dependabot updates by @evankanderson in #4791
  • Fix auto-generated keycloak client by @JAORMX in #4796
  • mindev: Add new subcommand to validate ruletype updates by @JAORMX in #4790
  • build(deps): bump github/codeql-action from 3.26.13 to 3.27.0 by @dependabot in #4797
  • Make minder ruletype apply/create smarter by @JAORMX in #4798
  • build(deps): bump github.com/openfga/go-sdk from 0.6.2 to 0.6.3 by @dependabot in #4795
  • Expose a helper to run a JQ expression on YAML input through our Rego library by @jhrozek in #4793
  • build(deps): bump http-proxy-middleware from 2.0.6 to 2.0.7 in /docs by @dependabot in #4799
  • build(deps): bump github.com/charmbracelet/lipgloss from 0.13.0 to 0.13.1 by @dependabot in #4794

Full Changelog: v0.0.69...v0.0.70

v0.0.69

22 Oct 08:04
503e9bc
Compare
Choose a tag to compare

What's Changed

  • Auto-generated cli documentation update - 2024-10-17 13:33:06 by @github-actions in #4774
  • Change defaults for pull request rules by @eleftherias in #4773
  • build(deps): bump github.com/yuin/goldmark from 1.7.7 to 1.7.8 by @dependabot in #4767
  • build(deps): bump mobx from 6.13.4 to 6.13.5 in /docs by @dependabot in #4765
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.43 to 1.28.0 by @dependabot in #4768
  • build(deps): bump coverallsapp/github-action from 2.3.1 to 2.3.3 by @dependabot in #4770
  • build(deps): bump the otel group with 2 updates by @dependabot in #4766
  • Add another mirror for Trivy DB in security.yml by @rdimitrov in #4776
  • build(deps): bump github.com/nats-io/nats-server/v2 from 2.10.21 to 2.10.22 by @dependabot in #4779
  • build(deps): bump github.com/stacklok/frizbee from 0.1.3 to 0.1.4 by @dependabot in #4778
  • build(deps): bump go.uber.org/mock from 0.4.0 to 0.5.0 by @dependabot in #4777
  • build(deps): bump go.uber.org/mock from 0.4.0 to 0.5.0 in /tools by @dependabot in #4780
  • build(deps): bump @mdx-js/react from 3.0.1 to 3.1.0 in /docs by @dependabot in #4782
  • build(deps): bump github.com/open-feature/go-sdk from 1.13.0 to 1.13.1 by @dependabot in #4781
  • build(deps): bump anchore/sbom-action from 0.17.4 to 0.17.5 by @dependabot in #4789
  • Introduce ResourceMeta and general resource parsing by @JAORMX in #4783

Full Changelog: v0.0.68...v0.0.69

v0.0.68

17 Oct 12:03
1d818b1
Compare
Choose a tag to compare

What's Changed

  • Rule Types: Skip .test.yml files when linting/applying by @JAORMX in #4772

Full Changelog: v0.0.67...v0.0.68

v0.0.67

17 Oct 08:17
1f78eb1
Compare
Choose a tag to compare

What's Changed

  • build(deps): bump the otel group with 2 updates by @dependabot in #4747
  • build(deps): bump github.com/xanzy/go-gitlab from 0.111.0 to 0.112.0 by @dependabot in #4749
  • Output test coverage from unit tests action by @JAORMX in #4752
  • build(deps): bump github.com/yuin/goldmark from 1.7.4 to 1.7.6 by @dependabot in #4748
  • Re-enable NATS test by @evankanderson in #4746
  • build(deps): bump github.com/yuin/goldmark from 1.7.6 to 1.7.7 by @dependabot in #4758
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.36.2 to 1.37.0 by @dependabot in #4760
  • build(deps): bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5 by @dependabot in #4759
  • build(deps): bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 by @dependabot in #4757
  • build(deps): bump anchore/sbom-action from 0.17.3 to 0.17.4 by @dependabot in #4756
  • build(deps): bump mobx from 6.13.3 to 6.13.4 in /docs by @dependabot in #4754
  • Add request id to logs. by @blkt in #4461
  • Add evaluation error to security advisory by @eleftherias in #4761
  • Display request ids in the CLI. by @blkt in #4763
  • Deprecate pushing a brew formula to stacklok/tap by @rdimitrov in #4769
  • Update Copyright headers, add workflow to enforce by @puerco in #4764
  • Revert "Temporarily remove migration check" by @puerco in #4771
  • Implement Minder TestKit by @JAORMX in #4762

Full Changelog: v0.0.66...v0.0.67

v0.0.66

15 Oct 06:58
566d76f
Compare
Choose a tag to compare

What's Changed

  • build(deps): bump github.com/stacklok/frizbee from 0.1.2 to 0.1.3 by @dependabot in #4709
  • build(deps): bump bufbuild/buf-action from 1.0.1 to 1.0.2 by @dependabot in #4707
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.35.1 to 1.36.2 by @dependabot in #4694
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.42 to 1.27.43 by @dependabot in #4693
  • Deprecate pull_requests database table by @JAORMX in #4713
  • Don't look up the same entity multiple times in ListEvaluationHistory by @jhrozek in #4715
  • Remove most zerolog messages from the properties service by @jhrozek in #4716
  • Add template mapping functions by @JAORMX in #4714
  • Gitlab: Add support for the Release entity by @JAORMX in #4706
  • Set entity columns to be 'timestamp with time zone' to avoid TZ-related test failures by @evankanderson in #4720
  • Fix race in github webhook handler tests. by @blkt in #4721
  • Add osv-scalibr as a dependency extraction method for PR remediation by @evankanderson in #4688
  • build(deps): bump coverallsapp/github-action from 2.3.0 to 2.3.1 by @dependabot in #4723
  • build(deps): bump aquasecurity/trivy-action from 0.26.0 to 0.27.0 by @dependabot in #4724
  • Implement an entity cache for the properties service by @JAORMX in #4729
  • Fix diff full ingester double deref. by @blkt in #4732
  • Use the new property cache in ListEvaluationResults by @jhrozek in #4731
  • Remove database use from handleRelevantRepositoryEvent by @jhrozek in #4705
  • Handle gitlab release deletion by @JAORMX in #4733
  • build(deps): bump anchore/sbom-action from 0.17.2 to 0.17.3 by @dependabot in #4737
  • Prepare docs for OpenSSF Migration by @lukehinds in #4649
  • Explicitly do go mod download in CI by @JAORMX in #4741
  • Replace stacklok/minder with mindersec/minder by @rdimitrov in #4742
  • Remove unused RefreshRepositoryByUpstreamID by @jhrozek in #4734
  • Add eval details template for JQ by @eleftherias in #4739
  • Fix dependabot grouping of otel dependencies. by @blkt in #4740
  • build(deps): bump github/codeql-action from 3.26.12 to 3.26.13 by @dependabot in #4743
  • build(deps): bump github.com/xanzy/go-gitlab from 0.110.0 to 0.111.0 by @dependabot in #4726
  • Move the github webhook handler to the provider by @jhrozek in #4738
  • Add eval details for rego constraints. by @blkt in #4730
  • build(deps): bump the otel group across 1 directory with 11 updates by @dependabot in #4745
  • Set mindersec as "release" owner in goreleaser config by @JAORMX in #4750

Full Changelog: v0.0.65...v0.0.66

v0.0.65

10 Oct 08:10
2622be5
Compare
Choose a tag to compare

What's Changed

  • build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.34.0 to 1.34.2 by @dependabot in #4552
  • build(deps): bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 by @dependabot in #4553
  • build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 by @dependabot in #4551
  • build(deps): bump actions/setup-node from 4.0.3 to 4.0.4 by @dependabot in #4550
  • Add new watermill handlers that get or refresh entities by properties and call another handler by @jhrozek in #4545
  • Disable the NATS tests temporarily again by @jhrozek in #4555
  • Revert "build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.34.0 to 1.34.2 (#4552)" by @jhrozek in #4556
  • Add template support to evaluation details. by @blkt in #4532
  • Add hint by provider class to the refreshAndDo handler by @jhrozek in #4558
  • Fix arguments passed to vulncheck template. by @blkt in #4560
  • Implement Gitlab event handling by @JAORMX in #4559
  • Update documentation for mindev, and add some handy debugging methods by @evankanderson in #4548
  • Allow customizing AckDeadline to allow for long-running sets of retries by @evankanderson in #4549
  • Fix data race in internal/entities/handlers/handler_test.go by @evankanderson in #4566
  • Use new path for trusty package URLs by @JAORMX in #4567
  • Remove backticks in vulncheck details template. by @blkt in #4562
  • Handle users deleted through the Keycloak management API, as well as through the Keycloak UI by @evankanderson in #4563
  • build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by @dependabot in #4575
  • build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 by @dependabot in #4574
  • build(deps): bump mobx from 6.13.2 to 6.13.3 in /docs by @dependabot in #4577
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.35 to 1.27.38 by @dependabot in #4576
  • build(deps): bump github.com/ThreeDotsLabs/watermill-sql/v3 from 3.0.3 to 3.1.0 by @dependabot in #4580
  • build(deps): bump docker/build-push-action from 6.7.0 to 6.8.0 by @dependabot in #4581
  • build(deps): bump github.com/nats-io/nats-server/v2 from 2.10.20 to 2.10.21 by @dependabot in #4579
  • Use the new handlers when evaluating repo webhooks by @jhrozek in #4565
  • Test otel instrumentation for panics. by @blkt in #4582
  • build(deps): bump docker/build-push-action from 6.8.0 to 6.9.0 by @dependabot in #4592
  • build(deps): bump github/codeql-action from 3.26.9 to 3.26.10 by @dependabot in #4591
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.29.1 to 3.30.0 by @dependabot in #4590
  • Clean up test providers and move EntityToProtoMessage as top-level interface function by @JAORMX in #4586
  • Extend selectors to include provider name and class by @jhrozek in #4583
  • Store provider's refresh token and expiry if possible by @JAORMX in #4588
  • gitlab: don't use deprecated token database column by @JAORMX in #4593
  • build(deps): bump github.com/bufbuild/buf from 1.42.0 to 1.43.0 in /tools by @dependabot in #4587
  • Group otel-related updates into single PRs. by @blkt in #4490
  • build(deps): bump google.golang.org/grpc from 1.66.2 to 1.67.1 by @dependabot in #4597
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.38 to 1.27.39 by @dependabot in #4599
  • build(deps): bump github.com/open-policy-agent/opa from 0.68.0 to 0.69.0 by @dependabot in #4589
  • build(deps): bump github.com/openfga/go-sdk from 0.6.0 to 0.6.1 by @dependabot in #4598
  • build(deps): bump github.com/theupdateframework/go-tuf/v2 from 2.0.0 to 2.0.1 by @dependabot in #4600
  • Use one workflow for trivy by @JAORMX in #4601
  • GitHub: don't try to use OAuth token for github-app provider by @JAORMX in #4594
  • build(deps): bump github.com/docker/cli from 27.2.1+incompatible to 27.3.1+incompatible by @dependabot in #4602
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.33.2 to 1.35.0 by @dependabot in #4603
  • build(deps): bump github.com/go-viper/mapstructure/v2 from 2.1.0 to 2.2.1 by @dependabot in #4604
  • Replace repository for entity in properties service by @JAORMX in #4607
  • Slight modification in properties fetch log by @JAORMX in #4608
  • Query Keycloak for user deletions every 5 minutes by @eleftherias in #4615
  • build(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by @dependabot in #4622
  • gitlab: Handle token refresh by @JAORMX in #4606
  • Adjust deadline on admin identity events as well as user events by @evankanderson in #4617
  • Pass along transaction to RetrieveAllPropertiesForEntity by @jhrozek in #4633
  • mindev: Use provider to construct entity protobufs by @JAORMX in #4630
  • gitlab: Handle query parameters in REST trait by @JAORMX in #4632
  • Update changelog and roadmap by @ethomson in #4631
  • Remove RefreshRepositoryByUpstreamID from the repo reconciler by @jhrozek in #4620
  • build(deps): bump github/codeql-action from 3.26.10 to 3.26.11 by @dependabot in #4640
  • build(deps): bump github.com/bufbuild/buf from 1.43.0 to 1.44.0 in /tools by @dependabot in #4638
  • build(deps): bump docker/setup-buildx-action from 3.6.1 to 3.7.0 by @dependabot in #4639
  • build(deps): bump github.com/aws/aws-sdk-go-v2/service/sesv2 from 1.35.0 to 1.35.1 by @dependabot in #4635
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.39 to 1.27.40 by @dependabot in #4637
  • Use generic refresh and message forwarding to evaluator for profile init by @jhrozek in #4634
  • properties service: Don't fail if multiple entries are found by @JAORMX in #4642
  • Print entity status name if available by @JAORMX in #4646
  • Add eval details template for Trusty rule by @eleftherias in #4645
  • Add feature flag for improved evaluation details. by @blkt in #4584
  • build(deps): bump docker/setup-buildx-action from 3.7.0 to 3.7.1 by @dependabot in #4652
  • build(deps): bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @dependabot in #4653
  • build(deps): bump github.com/aws/aws-sdk-go-v2 from 1.31.0 to 1.32.0 by @dependabot in #4655
  • build(deps): bump golang.org/x/tools from 0.25.0 to 0.26.0 in /tools by @dependabot in #4659
  • build(deps): bump golang.org/x/crypto from 0.27.0 to 0.28.0 by @dependabot in #4657
  • build(deps): bump github.com/xanzy/go-gitlab from 0.109.0 to 0.110.0 by @dependabot in #4656
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.40 to 1.27.41 by @dependabot in #4658
  • Add eval details template for deny-by-default rule. by @blkt in #4647
  • Enable the originating entity handlers by @jhrozek in #4661
  • origination: First get properties from provider before trying to persist by @JAORMX in #4660
  • Add additional test coverage for common functions in GitHub provider by @gajananan in #4648
  • Pass correct logger to watermill. by @blkt in #4662
  • gitlab: Add support for pull requests by @JAORMX in #4641
  • gitlab: Fix PR origination by @JAORMX in https://github....
Read more

v0.0.64

19 Sep 15:49
275579a
Compare
Choose a tag to compare

What's Changed

  • Add two more generic methods for EntityInfoWrapper by @jhrozek in #4518
  • Check PR number value before casting from int64 to int by @jhrozek in #4516
  • Use shortfailure message for alert title by @teodor-yanev in #4491
  • Add constant comparison operator to jq evaluation by @eleftherias in #4512
  • build(deps): bump redocusaurus from 2.1.1 to 2.1.2 in /docs by @dependabot in #4520
  • React to archived packages in trusty integration by @JAORMX in #4522
  • Use appropriate logging functions were possible by @JAORMX in #4523
  • Include the name of the package for which we couldn't find a fix by @jhrozek in #4524
  • Fixed wrong indentation of HTML in PR comments. by @blkt in #4531
  • Do not reply that a package has an unfixed vulnerability when in fact it is malicious by @jhrozek in #4530
  • build(deps): bump dompurify from 3.0.9 to 3.1.6 in /docs by @dependabot in #4503
  • build(deps): bump serve-static and express in /docs by @dependabot in #4442
  • build(deps): bump github.com/zitadel/oidc/v3 from 3.29.0 to 3.29.1 by @dependabot in #4497
  • build(deps): bump peter-evans/create-pull-request from 7.0.2 to 7.0.3 by @dependabot in #4496
  • build(deps): bump github.com/thomaspoignant/go-feature-flag from 1.33.0 to 1.34.0 by @dependabot in #4499
  • Add github/pull_author_login as a property for PRs by @jhrozek in #4535
  • build(deps): bump send and express in /docs by @dependabot in #4536
  • Use encoding/csv to when parsing selector record by @jhrozek in #4515
  • build(deps): bump github.com/bufbuild/buf from 1.41.0 to 1.42.0 in /tools by @dependabot in #4539
  • build(deps): bump github.com/styrainc/regal from 0.26.2 to 0.27.0 by @dependabot in #4538
  • Add Vyom-Yadav as a maintainer by @evankanderson in #4533
  • Add ReregisterEntity to provider interface by @JAORMX in #4541
  • Make max number of idle connections configurable. by @blkt in #4527
  • build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.33 to 1.27.35 by @dependabot in #4521
  • Add a method to retrieve an entity by upstream ID with a hint by @jhrozek in #4519
  • build(deps): bump peter-evans/create-pull-request from 7.0.3 to 7.0.5 by @dependabot in #4540
  • Add unit tests for gitlab entity registration by @JAORMX in #4546
  • Add unit tests for TestPropertiesToProtoMessage in Gitlab provider by @JAORMX in #4544

Full Changelog: v0.0.63...v0.0.64